XEP 0178 PEM password prompt despite no password on the p12 encrypted certificate #204
Comments
sjaeckel
changed the title
sjaeckel
added a commit
that referenced
this issue
May 5, 2022
Before this change the user had to provide a password callback, even if the PKCS#12 encoded file has no or an empty password. This changes the behavior, so we first try to open the file without a password and only then ask the user to provide one. This fixes #204. Signed-off-by: Steffen Jaeckel <[email protected]>
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
While implementing the XEP 0178 in my libstrophe client, I used the easy-rsa generated certificates without password using the command:
./easyrsa --subject-alt-name="otherName:1.3.6.1.5.5.7.8.5;UTF8:[email protected]" gen-req "[email protected]" nopassThe nopass option means that the created certificate has no PEM password.
Following the chain of commands I finally export the certificate into p12 file and use it to authenticate with a server in my strophe based program using the provided API.
I am getting prompted about the PEM password in shell while running the program. I need to pass empty string "" to get through this step. As a workaround, I implemented a password callback that inputs the empty string automatically, but I presume that the password prompt should not be shown, or at least it could be documented that it happens and that the callback needs to be added.
The text was updated successfully, but these errors were encountered: